JP6190041B2 - Safety confirmation system and concealed data similarity search method - Google Patents

Description

  The present invention relates to a concealed data similarity search method that performs similar search for biometric feature information that is concealed or protected to such an extent that an individual cannot be easily specified, a safety confirmation system that applies the concealed data similarity search method, and the like.

2. Description of the Related Art Conventionally, there has been known a person search system that allows a computer to search for a desired person using video recognition technology or the like from video (moving images) shot or recorded by a surveillance camera or the like (for example, Patent Documents 1 to 4) Non-patent document 1). Such a technique for searching based on the characteristics of an image itself without relying on external information such as tagging is generally called CBIR (Content-Based Image Retrieval), and is beginning to be used for searching for people.
Japanese Patent Application Laid-Open No. 2004-228688 extracts a portion in which a person (face) appears from an image, extracts a color histogram or the like as a feature quantity for individually identifying the person, and the feature quantity is similar to that of a desired person A video search system and a person search method that presume that they are the same person are disclosed.

The feature quantity used for image recognition is the pixel brightness value itself like the eigenface of principal component analysis in the old days, and the first generation feature quantity is based on pixel value (luminance) distribution and wavelet transform. . In the second generation, features based on local regions such as Haar-Like, HOG, EOH, and Edgelet are known, and some features such as SIFT and SURF have scale invariance for feature points of interest. . In the third generation, the spatial relevance of these local regions is taken into consideration, and the joint Haar-like, Joint HOG, sparse feature, Shapelet, co-occurrence probability feature, etc. have been used. .
In recent years, research on spatiotemporal features such as PSA (Pixel State Analysis), which is considered to be the fourth generation, has been conducted (for example, see Non-Patent Document 2).

  The performance of face recognition depends on the face image database used for learning. The FERET face database often used in contests includes right and left faces as well as front faces. In this database, as of 2010, face recognition with FAR (False Accept Rate) = 0.001 and FRR (False Reject Rate) of about 0.0003% has been realized.

CBIR, which has reached a practical level of accuracy in face recognition, is expected to be used in various fields in the future.
One of them is a safety confirmation system at the time of a disaster.
The disaster confirmation means currently in widespread use are provided by telecommunications carriers. For example, the person who wants to confirm safety (confirmation requester), the person who is confirmed (non-confirmation requester) ) Make a call to a predetermined phone number, leave a voice message with the other party's or his / her own phone number, and then call the other party's phone number and enter his / her other party's phone number. It can be reproduced.
Or, you can enter safety information in text from a mobile phone, smartphone, PC, etc., and the other person can browse the safety information by searching by phone number, etc. There are various things that can be played. In addition, there is also an apparatus that automatically transmits an e-mail prompting the user to input safety information to the e-mail address of the person being confirmed.
In addition, SNS (social networking service) that has been widely used in recent years can also be a means for confirming safety.

In connection with the present invention, there is known a safety confirmation system that uses CBIR technology or that is used for a search by pairing some personal information with a telephone number (see, for example, Patent Documents 5 to 7).
Further, a technique for identifying a human body using an image is known (see, for example, Patent Documents 8 to 9).

Japanese Patent Laid-Open No. 5-154651 JP 2009-027493 A JP 2012-068717 A JP2013-218511A JP 2003-304300 A JP 2006-254798 A JP-A-9-198401 JP 2012-85114 A Japanese Patent No. 5125424

Hiroshi Sukekawa, 4 others, “Development of large-scale person search system by facial image recognition”, Biometrics Study Group, Electronic Information Communication, August 27, 2012, p. 102-107, Internet <URL: http://www.ieice.org/~biox/2012/001-kenkyukai/pdf/BioX2012-18.pdf> Takayoshi Yamashita, “Effective features for specific object recognition”, [online], November 28, 2008, [February 21, 2014 search], Internet <URL: http: //www.vision.cs .chubu.ac.jp / features / PPT / CVIM2008 / ppt.pdf> Yair Weiss, et al, “Spectral Hashing”, [online], [February 21, 2014 search], Internet <URL: http://people.csail.mit.edu/torralba/publications/spectralhashing.pdf> Anxiao Jiang, et al, “Rank Modulation for Flash Memories”, [online], [searched February 21, 2014], Internet <URL: http://www.paradise.caltech.edu/papers/etr086.pdf > Alexander Barg and Arya Mazumdar, “Codes in Permutations and Error Correction for Rank Modulation”, [online], [searched on February 21, 2014], Internet <URL: http://citeseerx.ist.psu.edu/viewdoc /download?doi=10.1.1.249.198&rep=rep1&type=pdf> Hisashi Koga, “Similar search technology using hash and its application”, Fundamentals Review, The Institute of Electronics, Information and Communication Engineers Fundamental / Boundary Society, January 1, 2014, Vol. 7, No. 3, p. 256-267, Internet <URL: https://www.jstage.jst.go.jp/article/essfr/7/3/7_256/_pdf> Tuyls Pim, et al, “Capacity and examples of template-protecting biometric authentication systems”, ECCV Workshop BioAW, no.77, 2004, Internet <http://eprint.iacr.org/2004/106.pdf>

  In the conventional safety confirmation system described above, the person to be confirmed is aware that he is the person to be confirmed, has knowledge of the safety confirmation system, and can use communication means that can access the safety confirmation system. It is necessary to take actions such as voluntary access and leave a message, etc., and it is not possible to confirm safety unless one of these is satisfied. For example, after a disaster has occurred, evacuation to a safe place has been completed and you want to contact your immediate family. Young people and elderly people who are difficult to use can be unable to confirm safety.

  In addition, there are many Internet bulletin boards for disasters or safety confirmations, but most of them are not linked to each other, and there is a problem that the confirmation requester must perform a search operation on each bulletin board. is there. Even if information about the face of the person to be confirmed or the person requesting confirmation can be registered on the bulletin board, psychological resistance to the face image being posted as it is, or collection and use by a third party It is expected that it will hardly be registered due to fear of

In addition, there is social consent to perform face authentication (matching with a known face) or collecting and storing face information on a person photographed with a surveillance camera or the like without his / her awareness. The current situation is not enough.
Therefore, as a configuration of the safety confirmation system, it is considered that the distributed type of collating on the spot where the image is taken is more easily accepted than the centralized type of sending a face (query) to be collated to a server or the like. In that case, security technology for safely maintaining the face database is required at each site.

  Template protection technology, etc. that can only match biometric information of the same person and make it difficult to divert to other uses and collect statistical information, such as Fuzzy Vault, Cancelable Biometrics, Bioscript, Anonymous biometrics Patent Document 7) is known. Since data protected by such a method is randomized like encryption, it is difficult to analogize the original biometric information, and since it is not an isometric mapping, the similarity in the original space Must be tried one by one. For this reason, there is no application example to large-scale high-speed search as far as the inventors know.

  In the first place, it is essential that the similar search can reach the information even if it does not have the same information as the information to be searched. Even if the template protection is provided, the system can be used as long as the similar search function is provided. Regardless of the configuration, a third party can obtain desired information with a much smaller number of trials than in general decryption. Moreover, there is a risk that the biometric information is obtained directly from the person in secret, regardless of such an online method, and eventually it is a problem of the balance between the acquisition cost and the attack cost of template protection. The acquisition cost strongly depends on the range of the degree of similarity in which the search results are presented. However, the stronger the template protection, the more likely it is to collate without expanding the similar range.

  The present invention has been made in view of such problems, and it is possible to access the safety confirmation system even if the person to be confirmed does not have the awareness that the person is the person to be confirmed or has no knowledge of the safety confirmation system. It is an object of the present invention to provide a safety confirmation system or the like that can confirm the safety of a person to be confirmed without requiring voluntary action even if a simple communication means cannot be used directly.

  A safety confirmation system according to an aspect of the present invention provides a database in which a plurality of sets of a facial feature amount of a requester, personal information of the requester or the requester, and contact information of the requester are stored. A portal server (4), a local server (3) for obtaining a copy of the database, extracting a feature value from a human face image taken by a camera, and searching for a similar feature value from the copy; The portal server stores and provides the facial feature quantity in a template-protected state, and the local server, when successful in searching for the similar feature quantity, directs the similarity to the photographed person. The personal information corresponding to the feature amount to be displayed is requested for confirmation, and when a confirmation operation from the person is accepted, the contact of the confirmation requester is notified.

The personal information is a telephone number, the contact of the confirmation requester is an e-mail address or a telephone number, and the facial feature amount is reduced by principal component analysis, independent component analysis, or linear discriminant analysis. The vector data having a dimension of 100 dimensions or less or having a data size of 128 bytes or less is template-protected using at least one of random projection, one-way function, and public key cryptography.
The portal server is connected to the Internet and receives the set including the feature quantity of the template-protected state from the terminal (2) of the confirmation requester, and the local server has an electronic certificate or is trusted If possible or only in case of emergency, the database is provided and the confirmation requester's contact information includes information indicating the location where the confirmed person was photographed.

  The similar search method for concealed data according to another aspect of the present invention includes a first step of concealing a plurality of sample data by mapping such that at least a local distance is stored in the sample data space (S23, 44). A second step (65) of recording and recording a pair of the concealed sample data and arbitrary data based on the concealed sample data itself, and a method of using query data as the sample data A third step (S86) for concealing in the same manner as described above, a fourth step for identifying a cluster in which sample data similar to query data is recorded based on the concealed query data, and the identified step One similar to the query data by calculating the distance between the concealed sample data and the concealed query data from the cluster Identify sample data includes a fifth step of accessing any data of the target present data paired, the.

  According to the present invention, the person to be confirmed can be found and confirmed to be safe even if the person to be confirmed does not access voluntarily.

The block diagram of the safety confirmation system 1. FIG. The use case figure of the safety confirmation system 1. FIG. FIG. 6 is an activity diagram of a function for registering a face in the confirmation terminal 3. The functional block diagram which shows the feature-value extraction process in S23 of FIG. The structural example of the template protection parts 44a-44d of FIG. The functional block diagram of the portal server 4. FIG. 4 shows a configuration example of the clustering unit 65. The activity diagram of the function which detects a similar face in the local server 2. FIG. The structural example of the function means of DB search of S87. The structural example of the template protection part 44e. The structural example of the function means of DB search of S87. Example of identity verification screen.

  Hereinafter, embodiments according to the present invention will be described with reference to the drawings. In the description of each figure, components having substantially the same function are denoted by the same reference numerals and description thereof is omitted.

With reference to FIGS. 1-4, the safety confirmation system 1 concerning Example 1 is demonstrated. In FIG. 1, the structure of the safety confirmation system 1 is illustrated.
The safety confirmation system 1 of this example includes a plurality of local servers 2a to 2c (to be referred to as local servers 2 when not distinguished from each other) to which a camera or the like for photographing the person to be confirmed is connected, and the respective confirmations. Confirmation terminals 3 a to 3 c owned or operated by the client or the like, and a portal server 4 that first accepts an inquiry from the confirmation terminal 3 and mediates between the local server 2 and the confirmation terminal 3.

  The safety confirmation system 1 of the present example is schematically inputted from the confirmation terminal 3 with information such as the feature amount of the face image of the person to be confirmed and the telephone number, and distributed to the local servers 2a to 2c. The local server is collated with the face in the video taken with its own camera. When the face of the person to be confirmed is detected, the local server 2 emits a synthesized voice to stop the person to be confirmed, promptly ask for confirmation of identity or consent, and notify the confirmation requester if confirmation is obtained.

FIG. 2 is a use case diagram of the safety confirmation system 1. Note that FIG. 2 does not represent all the functions of the local server 2 and the like, and there is no intention to specify those functions in a limited manner.
The local server 2 is a personal computer or a tablet installed with a video camera that captures the face of a passerby at the entrance and hall of an evacuation center or other places where traffic frequently occurs. The presence is notified to the portal server 4 and it starts to function as the local server 2. The video camera is preferably capable of HD shooting at full frame, and the video is input to the local server 2 via an HDMI (trademark) cable. The local server 2 includes a human I / F such as a speaker for calling a passer-by, a screen for displaying information for confirmation, and a touch panel for receiving an operation from the passer-by. In addition, it is connected to the Internet, and preferably forms a P2P network or an autonomous distributed database with each other, and a plurality of means for connecting to the Internet are secured by LTE data communication, satellite Internet, etc. in addition to a wired line.

  The confirmation terminal 3 is a communication terminal such as a mobile phone, a smartphone, a tablet, a personal computer, etc. that can be connected to the Internet and browse a website. The confirmation terminal 3 has a function for registering a face and a confirmation notification of the person to be confirmed. It has a function of receiving and displaying, and more preferably, a telephone directory function capable of registering in association with a person's face. The function for registering a face includes a function for a confirmation requester to select a face, a function for designating a telephone number, and a function for pressing a send button.

  The portal server 4 is a Web server having a public IP address. The portal server 4 provides the terminal 3 with a Web page for registering the face of the person to be confirmed, accumulates registration information received from the terminal 3, and stores a database (DB). Build and distribute to local server 2. In addition, a notification that the person to be confirmed has been confirmed is received from the local server 2 and is reflected in the database as necessary. Further, the person to be confirmed is notified using an external or internal SMTP server.

  FIG. 3 is an activity diagram of the function of registering a face in the confirmation terminal 3. In this example, it is assumed that the confirmation terminal 3 is an Android (trademark) terminal, and a face registration application is installed in advance. The main body of this application is the execution code in the java virtual machine, and is preferably obfuscated.

When the face registration application is activated, a face image source selection screen is first displayed as step S11. On this screen, the user designates whether to select from any image file stored in the confirmation terminal 3 or a contact (phone book) as the face image source.
When an arbitrary file is designated as the face image source, a gallery display is performed as step S12. Specifically, an instance of Intent is generated, the target is an image using the setType method, the item selection is specified using the setAction method, a gallery display is displayed using the startActivityForResuit method, and the return value Issue an Intent to get the result of file specification by the user. This Intent is appropriately processed on the OS side, and a gallery display application or the like is started.

In step S13, the return value of the gallery display in S12 is received by the onActivityResult method. Since the screen of the confirmation terminal 3 changes in cooperation with Intent, when the Intent returns, the screen returns to the display of the registered application.
On the other hand, when a contact is designated as the face image source in S11, the contact is displayed as step S14. As in S12, Intent is issued with startActivityForResult, but PICK_CONTACT is specified instead of GALLERY as the request code.

  In step S15, the return value of the contact display in S14 is received by the onActivityResult method. The return value is a URI of ContactsContract.Contacts class that points to one person selected from the contacts. It is also possible to obtain a URI that can be accessed only once using the Grant-uri-permission function. Thereafter, a cursor instance is generated by the getContentResolver.query method, and the URI of the image file similar to the return value of S13 is obtained using the cursor. In addition, the telephone number of the person may be acquired at this time.

  In step S16, face detection is performed using the android.media.FaceDetector class. Specifically, create a Bitmap instance with the BitmapFactory.decodeFile method that specifies the URI of the image file, create a FaceDetector instance using the properties of the width and height of the Bitmap instance, and use the findFaces method on the FaceDetector instance. Recognize. The return value is the number of recognized faces, and detailed results (interval between eyes, face center coordinates, face tilt, reliability) are stored in FaceDetector.Face.

  In step S17, it is determined whether an error has occurred in the detection of S16. An error is determined by the fact that the number of faces is 0 or the reliability is not more than a predetermined value. If an error occurs, the process branches to step S19.

In step S18, the face is cut out (trimmed). Specifically, a new trimmed Bitmap instance is obtained by the createBitmap method specifying the original Bitmap instance and the cutout position. The cutout position is calculated according to a certain rule based on the FaceDetector.Face property of the face with the highest reliability. After that, a FileOutputStream instance is generated with a predetermined file name, and is saved as an image file by the Bitmap.compress method specifying the file output instance.
When correcting the face orientation by applying a face to a predetermined three-dimensional model (for example, an ellipsoid), the image is divided and combined into a single image after applying the Matrix class postRotate or postSkew methods. To do.

On the other hand, if an error is determined in S17, a manual trimming screen is displayed as step S19. As with S14, Intent is issued with startActivityForResult, but the URI of the image file used in S16 is specified for uri in intent.setData (uri), and the same save destination as S18 in uri for putExtra (MediaStore.EXTRA_OUTPUT, uri) Specify the URI of the file.
In step S20, the return value of the manual trimming in S19 is received by the onActivityResult method, and the process proceeds to S16. The return value received here can be used for error processing as appropriate, but the description is omitted.

Following S18, Step S21, Step S22, and Step S23 operate asynchronously and in parallel.
In step S21, communication with the portal server 4 is established, and a random number for template protection is received from the portal server 4.

In step S22, a screen for accepting input of a telephone number is displayed. This screen includes a text box for entering numbers, and whether the entered telephone number belongs to the confirmation requester (that is, the operator of the search terminal 3) or the person to be confirmed (that is, the registered person of the face). A radio box for designating another type (called a number type) and a send button. More preferably, the face image of the person to be confirmed saved in S18 is displayed, and a confirmation message that “the feature information of the face is transmitted to the server together with the telephone number etc. when the transmission button is pressed” is also displayed.
If the telephone number of the person to be confirmed has been acquired in S15, the telephone number may be displayed in a state previously input in the text box. The telephone number of the confirmation terminal 3 itself is not automatically acquired because it is considered that it is not particularly troublesome for the operator to input it on the spot.
It may also be possible to enter the phone number of both the requester and the person being confirmed, and optionally additional personal information (age, gender, other physical characteristics of the person being confirmed, email address, SNS, etc. (Account, handle name, address, office (school name), etc.) may be entered.
When it is finally detected that the transmission button is pressed, the telephone number, number type, and additional personal information that have been input at that time are stored.

  In step S23, a feature amount is extracted from the face image of the person to be confirmed, template protection is performed, and a “protected feature amount” to be transmitted to the server is generated. This template protection requires the random number received in S21, and S23 is suspended until a random number is obtained. The data size of the protected feature quantity is about 100 octets at most. It is desirable that the processing of S23 be completed by native code via JNI (Java Native Interface) or the like so that it can be completed within a few seconds and also in terms of obfuscation. There is openCV for Android available as a native library, and APIs for native (C / C ++) are available in addition to APIs for using from Java.

  When all of S21 to S23 are completed, in step S24, the telephone number and the number type entered on the screen of S22 and the protected feature amount generated in S23 are converted into the HTTP / TLS protocol, SMS (Short Message service) to the portal server 2. When using a short message, the protected feature is Base64 encoded.

  FIG. 4 is a block diagram showing the feature amount extraction processing in S23 of FIG. The size / resolution normalization unit 41 resizes the received face image to a predetermined size (width and height) and normalizes the resolution and contrast. Since the resolution immediately after resizing depends on the size and resolution of the original image and varies, the extracted feature amounts (or feature points) also vary. An LPF such as a Gaussian filter always removes a frequency component above a certain level, or detects the size of an edge or a high frequency component, and performs a sharpening / blurring filter process according to the value. If necessary, a luminance histogram is obtained, and the contrast is normalized based on the luminance histogram. Note that these normalization processes can also be performed after feature amount extraction.

  The feature amount extraction unit 42 extracts a feature amount from the normalized image from the size / resolution normalization unit 41. As the feature amount, various known ones as described in Non-Patent Document 2 can be used. In this example, the normalized image is divided into small blocks, a histogram is obtained for the frequency of edge patterns for each small block, and the values (frequency) of each bin of the histogram are arranged in one column according to a predetermined rule. Is a feature quantity, and its dimension reaches about 1000.

The dimension compression unit 43 receives the feature quantity from the feature quantity extraction unit 42, converts it into a feature quantity of a smaller dimension, and outputs it. Basically, techniques such as principal component analysis (PCA), linear discriminant analysis (LDA), and independent component analysis (ICA) are used. That is, a variance-covariance matrix or the like is obtained from feature amounts extracted from a large number of human faces (samples) in advance, and a transformation matrix (projection matrix) A composed of the eigenvectors is prepared. The transformation matrix A is multiplied by a coefficient for making the scale of each principal axis after transformation constant, and the dimension reduction unit 43 normalizes the input feature quantity by simply multiplying this transformation matrix. Obtained reduced dimension features. Although the number of rows of the transformation matrix A (dimension of the reduced feature quantity) depends on the number of samples, about 100 is sufficient for PCA and LDA, and about 20 to 30 is sufficient for ICA.
The transformation matrix A is common to the entire system and is basically not changed during operation. Further, normalization in the dimension compression unit 43 is not essential.
The main axis obtained by ICA is similar to an appearance feature that a person is conscious of when trying to remember another person's face. For example, there are axes that well reflect the presence or absence of a beard, the presence or absence of glasses, and the like. Such invariant feature axes may be weighted down or removed.
The transformation matrix obtained by PCA or the like is an orthonormal basis, and the distance relationship is well preserved even after dimensional compression. As described above, RP described later can be used, and LSH (Locality Sensitive Hashing) can be used supplementarily.

The template protection unit 44 applies a one-way function, random projection (RP), public key cryptography, or the like to the reduced dimension feature amount from the dimension compression unit 43, and outputs a concealed feature amount (or code). To do.
5 and 10 show five variations of the configuration of the template protection unit 44. FIG.
The template protector 44a in the example of FIG. 5A is a simplified implementation of Anonymous biometrics (see Non-Patent Document 7), and includes a quantizer 51 that quantizes a reduced dimension feature, A hash calculator 52 that performs cryptographic hash processing on the obtained feature value, and a subtractor 53 that subtracts the quantized feature value from the reduced dimension feature value before quantization.
The quantizer 51 discretizes the input reduced-order feature quantity more roughly, and uses, for example, LSH. In this example, since the reduced dimension feature amount is processed in advance by PCA and the scale is normalized, it functions as a kind of PCH (Principal Component Hashing). In simple terms, it is only necessary to equally divide the component values of each axis into a plurality of sections, and this can also be achieved by extracting the upper digits (upper bits) of the component values. To avoid loss of information, the bit length B _d discretization feature amount is lesser than the bit length B _h output by the hash calculator 52 is deemed good, no actual little problem to. (The bit length Br residual output by the subtractor 53, the sum of B _h) the bit length Bt template protection unit 44a outputs rather so that a desired value, may be selected B _d.
The hash calculator 52 outputs a hash value having a discretized feature amount of a constant bit length B _h according to an algorithm such as SHA-1.
If the input reduced dimension feature value is in the vicinity of the quantization boundary (a plurality of quantization values having substantially the same quantization residual size exist), the template protection unit 44a uses the plurality of quantum values. A set of a plurality of hash values and residuals corresponding to the quantization value may be output.
The discretized feature amount corresponds to helper data in anonymous biometrics.
The template protection unit 44a does not use the random number of S21 in FIG.

FIG. 5B is an example of cancelable biometrics using RP. The template protection unit 44b includes a conversion parameter generation unit 54 that generates a parameter according to a predetermined rule from the random number received in S21 of FIG. 3, and a conversion unit 55 that converts a reduced dimension feature quantity based on the generated parameter. And comprising.
The conversion parameter generation unit 54 obtains a random projection matrix by, for example, replacing a row or column of a B _d × B _d matrix prepared in advance according to a random number according to a predetermined rule, or inverting the sign. This RP matrix may be received from the beginning as a random number. The matrix prepared in advance is preferably a unitary matrix, and may be a unit matrix or an RP matrix using normal random numbers or uniform random numbers for each element.
The conversion unit 55 multiplies the RP matrix by the reduced dimension feature quantity (column vector) from the dimension compression unit 43, and uses the result as the output of the template protection unit 44b.
Here, the template protection unit 44b has been described as not performing dimensional compression, but is the same as the dimensional compression unit 43 in that only matrix multiplication is performed, and these processes can be integrated. . That is, the rows of the transformation matrix A may be replaced based on random numbers.
In cancelable biometrics, if a secret random number or protected feature value is leaked, the random number is updated, and all stored feature values are re-RPed with a new random number, thereby impersonating the leaked information. prevent.
With RP alone, there may be an attack that estimates the component by applying PCA to the sample after RP and restores the original feature value or face image. However, in this example, PCA and normalization are performed before RP. Each component appears to be independent, making such analysis more difficult.
Since the RP in this example is unitary or similar, the distance relationship is well preserved after the conversion.

FIG. 5C shows an example of an RP having a certain level of confidentiality even if a secret random number is not given. The template protection unit 44c includes, in addition to the template protection unit 44b, a hash function, error correction decoding, vector quantization, distance storage run length limit code, permutation code, distance storage map (DPM), Rank Modulation decoding, etc. A coding unit 57 that performs any one or more of the above is provided, and a mapping unit 58 is provided separately if necessary. The template protection unit 44c performs random projection by using an RP matrix randomized by a tuple (a code, a vector, etc.) uniquely determined from a reduced dimension feature amount, instead of a given random number.
For example, the sparsely quantized feature amount (hash value) can be used for the tuple, as in the template protection unit 44a. For example, the PR matrix is randomized by exchanging tuples every 8 bits and exchanging rows designated by odd word values (0 to 127) and rows designated by even word values. . The distance relations are preserved since the same random projection is applied to the reduced-dimensional features quantized in the same bucket. But if the buckets are different, the distance is not preserved. This method is advantageous if confidentiality is important.
The fact that the RP matrix has a one-to-one correspondence with the quantized feature value suggests the possibility of estimating the RP matrix from the size of each component of the protected feature value. However, if the sign inversion operation is included in the randomization, the estimation can be made more difficult. Randomization of the RP matrix can include any operations that maintain unitarity (approximately), as well as row and column exchanges and sign inversions described above, and these operations are kept as secret as possible.

  Here, a method of mapping buckets that are close to each other while maintaining the random projection method will be considered. One answer is to minimize (1) the hamming distance of the tuples so that the RP matrix of the proximity buckets has a relationship that just swaps two rows (or columns). Spectral Hashing, a derivative of LSH, has made it possible. Spectral Hashing introduces the concept of spatial frequency (mode) and divides between the maximum and minimum values on the main axis into a number twice the number of modes, and alternately turns them into binary code 0 or 1 By encoding to either one, a binary code having the same bit length as the number of spindles can be obtained. More simply, it is only necessary to binarize the components of each main axis of PCH (LSH), and when it is desired to represent each component with multiple values, a Gray code is used.

In the field of code theory, codes that preserve or enhance the Hamming length have been known for a long time, and there are distance preservation run length limit codes, permutation codes, distance preservation maps (DPM), and the like. In recent years, Rank Modulation, which has been developed to correct errors in a multi-level cell type flash memory, can also be used. Since these basically handle binary codes, it is necessary to convert binary-reduced low-dimensional feature quantities, which are multilevel information, into binary codes.
The mapping unit 58 performs this conversion, and, as an example, maps with a Gray code.

FIG. 5D shows an example using public key cryptography. The template protection unit 44d includes a public key encryption unit 60 that encrypts the reduced dimension feature quantity based on the random number (public key) received in S21 of FIG.
The public key encryption unit 60 encrypts the reduced dimension feature quantity using, for example, McElice encryption or Niederriter encryption using Goppa code or low density parity check code. The McElice cipher uses a k × n generator matrix G, a k × k regular matrix S, and an n × n transposed matrix P as a secret key and G ′ = SGP as a public key. Although this cipher has a weak portion in a part of a polynomial used as a code, there are advantages in that the calculation cost of encryption and decryption is low and it is difficult for a quantum computer to decipher.

FIG. 10 is a configuration diagram of the template protection unit 44e. The template protection unit 44e is a combination of the ideas of the template protection units 44a to 44c and random data modification and error correction.
The bit divider 101 divides the highest-order 1-2 bits in the binary representation of the input reduced dimension feature quantity and the remaining bits, and outputs them as a quantized feature quantity and a residual feature quantity. These correspond to the outputs of the quantizer 51 and the subtractor 53 of the template protection unit 44a.
The Gray encoder 102 performs Gray coding on the quantized feature value. It is not necessary when the bit divider 101 extracts only the most significant bit.
The random number generator 103 generates a random number each time.
The data modifying unit 104 performs modification such as inverting one bit at a predetermined position of the Gray code according to a predetermined rule corresponding to the random number from the random number generator 103.
The pre-modifier 105 modifies a part of the residual feature value according to a predetermined rule corresponding to the random number from the random number generator 103. For example, a sign protection method or a template protection method such as block scramble or morphing is applied to a component determined by a random number. In the initial stage of the search, since a rough similarity search is performed with the feature amount modified by the pre-modifier 105, the amount of modification here is such that individual identification becomes difficult (feature amount of a single person). Is small enough to be found by rough similarity search.
An RP (Random Projection) processor 106 generates an RP matrix according to a predetermined rule corresponding to the modified gray code from the data modifier 104 and multiplies the input reduced dimension feature quantity. Even if the RP matrix is known, the RP matrix is required to make it difficult to estimate the gray code and the reduced-dimension feature quantity, and the modification of the gray code contributes to this requirement.
The error correction code unit 107 is an RS (Reed Solomon) encoder, for example, and outputs redundant symbols.
The concatenator 108 concatenates the feature quantity RPed by the RP processor 106 and the redundant symbol, and outputs it as a protected feature quantity.

FIG. 6 is a functional block diagram of the portal server 4 of the safety confirmation system 1 of this example. The portal server 4 in this example is constructed in a LAMP / LAPP environment.
The http server 61 is, for example, an Apache HTTP server and Openssl. Basically, the http server 61 provides static content such as a page that introduces the site on the Internet, which is held by the content storage unit 62, and a search terminal. The http message of the face registration request from 3 is received.
Further, in response to a request from the local server 2, a DB snapshot and a differential patch, which will be described later, are transmitted. At this time, it is desirable to use SSL communication at least during normal times. The http server 61 has a server certificate acquired in advance from a public CA.

  In addition to the top page, the content storage unit 62 is a page for face registration to be executed and displayed on the web browser of the search terminal 3, a page that leads to the destination of the face registration application to be downloaded to the search terminal 3, and a DB 66 described later. Preserved static contents such as snapshots and differential patches are retained.

The server side processing unit 63 is, for example, a Java (trademark) servlet and controls the operation as the portal server 4. For example, the body of the http message of the face registration request is divided into personal information such as a telephone number and protected feature amounts, and the clustering unit 65 described later is controlled and registered in the DB 66. In addition, the DB 66 creates snapshots and the like, and saves the compressed files in the content storage unit 62.
The server-side processing unit 63 can further execute higher-order functions that operate on a Java virtual machine, and can also perform distribution using server-oriented P2P technology such as BitTorrent DNA (BitTorrent is a trademark).

  The private certificate authority (CA) 64 is, for example, a part of the function of Openssl, and issues a unique certificate with the private CA 64 as a root to the local server 2 that does not have a certificate. A public CA is preferable if possible. The local server 2 to which the certificate is given is managed by a public organization such as a public office or local government, an educational institution, or other highly public organization (designated public organization, etc.). Depending on the online method of searching or the offline method of applying in writing. Once issued, the certificate can be used continuously even if the IP address changes during a disaster.

  The clustering unit 65 classifies the protected feature value as protected or cancels the protection, and classifies it into one of a plurality of clusters, and outputs the cluster ID. A cluster is a group of a plurality of feature quantities close to each other. In order to realize a similar search (pseudo nearest neighbor search) with O (n logn) for the number of face registrations n, each cluster needs to be controlled so that the number of registrations (cluster size) is as uniform as possible. Many of the known clustering methods measure distances between clusters or within clusters, and integrate and divide clusters based on the distances, and update cluster classification criteria. The clustering unit 65 of this example stores the cluster statistical information and classification criteria necessary for distance calculation in the DB 66 as necessary, and updates the classification criteria at a predetermined timing.

The DB 66 holds a cluster table 67, a feature quantity table 68 equal to the number of clusters, a personal table 69, and the like in a storage medium such as a hard disk, and executes registration, update, deletion, and the like of data for these tables.
The cluster table 67 stores the cluster location (start address) and attributes (number of registrations, statistical information in the cluster, classification criteria, etc.) using the ID of the existing cluster as a main key.
The feature amount table 68 is an entity of each cluster, and holds the feature amounts classified into the cluster with the face ID as a main key.

The personal table 69 uses the face ID as a main key, and holds personal information of the person (identified person) and the registrant (confirmation requester) of the face. The personal information includes the registrant's telephone number or mail address for contacting the registrant. The face ID is an ID uniquely assigned to each registered face.
As a function of the DB 66 itself, these tables may be encrypted and recorded.

FIG. 7 is a configuration example of the clustering unit 65. The clustering unit 65 has a plurality of variations corresponding to the variations of the template protection unit 44.
FIG. 7A shows a clustering unit 65a corresponding to the template protection unit 44a. The separation unit 71 separates the input protected feature quantity into a cryptographic hash value and a quantization residual. Cryptographic hash values have no distance conservation and cannot measure distances between features with different hash values, so the quantization boundaries and cluster boundaries in the template protector 44a must be aligned. . In this example, a mode of associating one hash value with one cluster (one-to-one) is basically used, and exceptionally, a mode of associating one hash value with a plurality of clusters (one-to-many) is used.
The cluster dividing unit 72 divides a cluster that is too large. The cluster dividing unit 72 obtains the size from the cluster table 67a, and when the size is a specified size, the cluster is divided into (current size / specified size) using a known clustering technique. Is divided into integer numbers. As a clustering method, hierarchical clustering such as k-means method, divide-and-conquer method, Ward method, etc., one class SVM (only two divisions), etc. can be used. A division index is assigned to each cluster after division, and cluster attributes such as the center of gravity are recorded in the cluster table 67a.

The shortest search unit 73 searches for the hash value part of the cluster ID from the cluster table 67a using the hash value of the feature amount to be registered in the DB 66, and acquires the cluster ID and the like. When there are a plurality of clusters having the same hash value, the cluster to be classified is determined based on the read cluster attribute (centroid), and the cluster ID is output. When there is only one matching cluster, the division index of that cluster is output. If there is no cluster corresponding to the hash value, a new cluster is created. At this time, the division index is 0.
If the hash value and the split index are concatenated as a cluster ID and the bit length B _ID is 128, the recording capacity of the cluster table 67a can be about 24 Mbytes maximum even if there are 1 million face registrations. It does not hinder the memory DB. If the cluster table 67a is sorted by cluster ID, it can be easily searched by binary search.

FIG. 7B shows a clustering unit 65b corresponding to the template protection unit 44b. The input protected feature is randomly projected by a fixed RP matrix, which can be regarded as a substantially isometric mapping. Accordingly, any clustering method can be used, and for example, LSH-Link described in Non-Patent Document 6 is used. LSH-Link is a kind of hierarchical clustering, which uses LSH for approximate calculation of the distance between clusters (minimum distance), and can be applied to a complete connection method in addition to a single connection method. In LSH-Link, distance calculation is performed by focusing on elements having the same hash value (features in this example) belonging to different clusters.
The LSH unit 74 reads the hash function information representing the roughness of the LSH stored as one of the attribute information in the cluster table 67b of the DB 66, and calculates the hash value of the protected feature value input according to the hash function information.

The cluster table 67b has a dictionary that associates a hash value (bucket) with the ID of the cluster to which the hash value belongs, and can simply read the cluster ID using the hash value as an argument. This dictionary has a plurality of versions with different LSH roughness, and the dictionary under trial of clustering holds, for each hash value, a plurality of cluster IDs (the previous version) from which the hash value was obtained and their feature values. And it can be used for distance calculation.
The distance calculation unit 75 calculates a distance (Manhattan distance) between the plurality of feature amounts having the same hash value.

The update unit 76 compares the distance obtained by the distance calculation unit 75 and the roughness of the LSH, determines whether or not the cluster to which the feature value obtained from the distance belongs should be merged, and creates a new version of the dictionary. The cluster table 67b is updated.
In the illustrated template protection unit 44b, in a case where a plurality of faces of the same person are registered, a single person is actually registered in the DB 66 so that the number of cases where a single person is classified into a plurality of clusters is sufficiently reduced. It is desirable to perform clustering corresponding to each person's feature distribution.

  Since the clustering unit 65c corresponding to the template protection unit 44c is the same as the clustering unit 65a or the clustering unit 65b, illustration is omitted. If it can be expected that neighboring quantized feature-reducing features will be projected in close proximity to each other by a similar RP matrix, the clustering unit 65b is used, and if it cannot be expected, the clustering unit 65a is used. That's fine.

  FIG. 7C shows a clustering unit 65d corresponding to the template protection unit 44d. The clustering unit 65d only adds the encryption / decryption unit 78 to the clustering unit 65b, and will not be described in detail. That is, the protected feature quantity is temporarily decrypted into a reduced dimension feature quantity by the encryption / decryption unit 78, and an arbitrary clustering method is applied based on the reduced dimension feature quantity, and the protected feature quantity belongs. The cluster ID to be determined is determined. In the DB 66, protected feature amounts are registered in a clustered manner.

  The clustering unit 65e corresponding to the template protection unit 44e can be realized in the same manner as the clustering unit 65a or the clustering unit 65b. When the clustering unit 65d is based on the clustering unit 65a, the redundant symbol included in the input protected feature amount is used for the initial cluster ID, and a large cluster may be divided as appropriate. Also in the case of 65b, the redundant symbol can be used as a part of the hash value (not affected by RP).

  FIG. 8 is an activity diagram of a function for detecting a similar face in the local server 2. This detection function is composed of a driver for connecting to a video camera and taking out a frame of a moving image, and a detection application program. In this application, the code for the part that performs template protection processing and similar search is encrypted by the anti-cracking tool, making it difficult to perform disassembly and dynamic analysis by a soft debugger. When the application is started for the first time, it is assumed that a snapshot of the DB 66 is downloaded from the portal server 4 using a certificate, and thereafter, the local DB 80 is updated by periodically downloading a differential patch. Further, a character string (for example, “XYZ elementary school shelter in ABC town”) indicating the installation location of the camera of the local server 2 is set.

This activity diagram shows that the search core process starting from step S81 and the external process such as the user interface starting from S89 always operate in parallel.
First, in step S81, the latest frame of a moving image shot by the video camera is captured.
Next, in S82, face detection is attempted from a one-frame image using a known algorithm such as AdaBoost, and when one or more faces are detected, the image is cut out, and the position in the frame, reliability, etc. Output with attribute information.
Next, in S83, the same processing as that of the feature amount extraction unit 42 and the dimension compression unit 43 illustrated in FIG.

In step S84, tracking processing is performed using the tracking person table. In this tracking process, each newly extracted feature amount and its attribute information is compared with the previously extracted feature amount and attribute information (for example, within a few seconds) or compared with the tracking person table, If there is no similar thing, the feature-value is added to a table with registration time. If the reliability of the new feature quantity is equal to or greater than a predetermined value and the output flag in the tracking person table is false, the feature quantity is output and the output flag is updated to true. The feature quantity with the old registration time in the table is deleted.
By this tracking process, the subsequent search process can be narrowed down to a frequency that can be processed entirely.

Next, in S85, it is determined whether or not a person to be searched is output in the tracking process in S84. If there is no output, the process for the current frame is terminated.
Next, as S86, template protection is performed by the same processing as the processing in the template protection unit 44 shown in FIG. This protected feature amount becomes a search query. In the case of the template protection unit 44e, an iterative process described later is involved with the subsequent S87.

  Next, as S87, the DB 80 is searched for a feature quantity that is similar (nearest neighbor) to the query feature quantity given in S86. The DB 80 has a cluster table 91, a feature amount table 92, and a personal table 93 having the same contents as the DB 66, and the cluster structure performed by the portal server 4 is maintained as it is. There, similar features are aggregated into clusters, and one or several search target clusters are searched, and then the multi-stage search is performed to search within the clusters. Even if there is, it can search at high speed. Also, since the size of one feature amount is as small as 128 bytes, even if there are 8 million cases, it is 1 Gbyte, and ultra-high speed search in on-memory is also realistic. Details of the DB search will be described below for each type of template protection.

9 and 11 show variations of the function means for DB search in S87.
The DB search unit 87a in the example of FIG. 9A searches for feature quantities protected by the template protection unit 44a and clustered by the clustering unit 65a. The protected feature amount is composed of a hash value and a residual, and is extracted by the separator 71. Clustering is basically one-to-one with a hash value.
The cluster table 91a has the same contents as the cluster table 67a in the DB 66, and if a hash value is given as the cluster ID, the cluster feature quantity table 92a can be accessed.

The feature quantity table 92a is the same as that in the DB 66, and the residual of the protected feature quantities is held.
The minimum distance search unit 93 searches the feature amount table 92a of the cluster for the feature amount residual given in S86 and the one with the smallest distance (Manhattan distance), and determines the face ID of the feature amount. Output. If the cluster size is small, a linear search can be used.

The DB search unit 87b in the example of FIG. 9B searches for feature quantities protected by the template protection unit 44b and clustered by the clustering unit 65b. This feature amount is stored as a distance in the entire feature amount space, and any clustering method can be used regardless of template protection.
The cluster table 91b has the same contents as the cluster table 67a. When a hash value is given as the cluster ID, the cluster feature amount table 92a can be accessed.

The cluster table 92b is the same as the cluster table 67b, and holds a dictionary linking hash values and cluster IDs and hash function information used for clustering.
The LSH unit 94 reads the hash function information of the cluster table 91b and outputs a hash value of the query feature value. By referring to the dictionary with this hash value, usually one cluster ID is obtained.
Thereafter, like the DB search means 87a, the minimum distance search unit 93 searches the cluster.
The DB search means 87b can also be used for searching for feature quantities protected by the template protection unit 44c. Such a feature is macroscopically considered to be distance preserved (much larger than a cluster).

  The DB search unit 87c that searches for the feature quantities protected by the template protection unit 44c and clustered by the clustering unit 65c is the same as the DB search unit 87a or 87b, and thus the description thereof is omitted.

  The DB search unit 87d that searches for the feature quantities protected by the template protection unit 44d and clustered by the clustering unit 65d is added to the DB search unit 87d by the encryption / decryption unit 94 (which has the same configuration as the encryption / decryption unit 78). The explanation is omitted because it is only added.

  The DB search means 87e in the example of FIG. 11 searches for feature quantities protected by the template protection unit 44e and clustered by the clustering unit 65d. The feature quantity handled here includes a protected feature quantity body and a redundant symbol. The clustering unit 65d associates the redundant symbol with the hash value of the LSH and associates the redundant symbol with the cluster ID. Since the DB search means 87e involves repetitive processing, the template protection means in S86 is also shown.

The bit divider 111, the Gray encoder 112, and the data modifier 114 to the error correction code unit 117 are template protection means for generating a query. The bit divider 101 and the Gray encoder shown in FIG. 102 and the data modification unit 104 to the error correction coding unit 107 have the same configuration.
However, the gray encoder 112 can output the gray code before data modification to the DB search means 87d. Further, the pre-modifier 115 performs modification in accordance with the correction bit indicator given from the DB search means 87e, not the random number. Further, the RP processor 116 performs RP according to the corrected gray code given from the DB search means 87e.
The random number trial controller 113 controls an operation to try all kinds of random numbers, and sequentially gives n numbers corresponding to the length (number of bits) of the Gray code to the data modifier 114. Therefore, a maximum of n protected feature values (including redundant symbols) are output from the template protection means. These n attempts are for searching for redundant symbols that would have been obtained at the time of registration similar to the query in the DB 80, because the hash value is slightly different, or a random number. You can search without distinguishing whether or not.

The error correction decoder 119 performs error correction decoding on the unmodified gray code from the gray encoder 112 using the redundant symbol from the error correction encoder 117, and if the error correction decoder 119 corrects the error normally, the error correction decoder 119 is corrected. A gray code and a corrected bit indicator indicating the position of the corrected bit are output. When there are a plurality of correction bits, a correction bit indicator is output bit by bit and tried. That is, one of the plurality of correction bits is altered by a random number, and the rest is considered to be caused by a slight difference in hash values that occurs between registration and retrieval.
This results in a protected feature that is pre-modified based on the corrected bit indicator and RP based on the corrected Gray code.
The LSH unit 119 calculates a hash value of the protected feature amount using the same hash function as that used in the cluster dividing unit 72.

The cluster table 91e is the same as the cluster table 91b, and is accessed for each cluster by using a set (cluster ID) of a redundant symbol input to the error correction decoder 119 and a hash value from the LSH unit 119 as an argument. Then, an address and a cluster attribute for accessing the feature quantity table of the cluster are returned. Here, it is assumed that any one or more feature quantities (representative feature quantities) classified into the cluster can be used as cluster attributes. Even if the cluster attribute cannot be used, it is sufficient to access the feature quantity table 92e and retrieve one feature quantity each time.
Since the cluster table 91e is a dictionary type, if it is not in the dictionary (no cluster exists), it moves to the next trial.

The distance calculator 120 is the same as the distance calculator 75, calculates the distance between the feature quantity of the cluster returned from the cluster table 91e and the protected feature quantity of the query, and performs n trials. Each time a distance equal to or smaller than a predetermined threshold is obtained, a trial interruption signal is output to the random number trial controller 113 and the address of the cluster feature quantity table 92e is passed to the minimum distance search unit 121. The threshold is determined based on the roughness of LSH. In order for the distance to be less than or equal to the threshold, it is not sufficient that the redundant symbols coincide by chance, and a query similar to the feature quantity registered with the redundant symbols must be prepared.
When there are a plurality of registrations of the same person in the DB 80, the distance can be equal to or less than the threshold value a plurality of times.

The minimum distance search unit 93e performs a similarity search with the feature quantity protected by the query from the feature quantity table 92e of the passed address at a level that can identify an individual. Then, the face ID of the most similar feature amount or the feature amount whose distance is initially equal to or smaller than a predetermined threshold is output.
Finally, the DB search unit 87e returns one face ID or non-applicable information as a search result.

Returning to FIG. 8 again, in S88, if a similar person is found in the search in S87, the result (face ID, image based on the feature amount, etc.) is transmitted.
Note that S89, which has started the operation for the first time, always waits for reception of this search result, and can hold the received search result for one time. When the search result is held or newly received, , Go to S90.

  In S90, the synthesized voice that calls the person who is about to pass in front of the camera is reproduced, and a screen that asks the person to confirm the identity is displayed. At that time, the personal ID is obtained by referring to the personal table in the DB 80 using the face ID as an argument, and whether the telephone number included in the personal information is that of the person (confirmed person) of the face or a registrant (confirmer) ) Select the contents of the identity verification screen according to

FIG. 12 shows an example of the identity confirmation screen.
FIG. 12A shows an identification screen 121 for presenting the telephone number of the person. This screen 121 is displayed when the person in front of the screen recognizes the consent button (personal button) 122 to be pressed when the presented telephone number is recognized as his / her own and the telephone number is not his / her own. A push denial button (another person button) 123 and a hold button 124 to be pushed when it is desired to hold the determination.
FIG. 12B shows a personal identification screen 126 that presents the registrant's telephone number, and similarly has three buttons.

When the personal identification screen is displayed, S91 and S92 start to operate in parallel.
In S91, a human I / F operation by a person is awaited.
In S92, a timer is started. This timer is ignited when a button pressing time-out time (for example, 30 seconds) is reached, and even if there is no button pressing, the process can proceed to the next process.

In S93, it is determined which button has been pressed. When the hold button 124 is pressed, nothing special is done.
When the consent button 122 is pressed, as S94, an e-mail or a short message to the effect that the person (confirmed person) has been found is addressed to the e-mail address or telephone number of the confirmation requester indicated by the personal information acquired in S88. Send. Alternatively, the transmission may be requested to the portal server 2 or a telecommunications carrier. Information indicating the location where the confirmed person was photographed is written in the e-mail or the like. Since there is a possibility that the reception of the mail or the short message is set to be rejected at the terminal of the confirmation requester, it is desirable to transmit again from another method or another server when the transmission fails.

  If it is determined in S89 that the consent button 122 has been pressed, the search can be performed even if the camera passes again in front of the camera by deleting the face ID record from the feature amount table or the personal table in the DB 80 in S95. Do not apply.

   As described above, since the detection application program of the local server 2 can be used only by an administrator who can use the DB 66, it is difficult to use the DB 66 for purposes other than the intended purpose. Also, even if it is used by malicious users, the search frequency is limited, so for example, even if you prepare a video that switches the face image for each frame and try to retrieve the search result, performance Cannot be obtained. If a similar person is found, personal information can be disclosed, but only by phone number. The telephone number is difficult to use for online cracking, and the value of personal information is considered low for those who are not registered. Alternatively, a secret password that can be understood only by the person and the registrant may be used instead of the telephone number.

As described above, the safety confirmation system 1 according to the first embodiment can search for a person to be confirmed without active work of the person to be confirmed in a disaster or the like.
The safety confirmation system 1 of this example can be implemented with various modifications. In this example, considering the instability of the communication environment, the DB downloaded to the local server 2 is the same as the DB 66 of the portal server. For example, only the cluster table or only the cluster table and the feature table are similar. Information necessary according to the success or failure of the search may be acquired sequentially from the portal server.
The registration may be deleted from the DB 66 when there is no request to continue registration within a predetermined time from the confirmation requester who received the notification in S94, or when a predetermined number of days have elapsed since registration.

The safety confirmation system 1 of this example can also be applied to various uses. In this example, it is assumed that the person is alive, but it can also be used, for example, for the purpose of estimating the identity of the police or a diplomatic mission from a face photo of the body. The contact information (raw data) of registered registrants with similarities is provided to the police and is used to request identity verification from relatives and dentists.
In addition, it is desirable that registration is performed after presenting the registered contents to the registrant so that they can be recognized and used.
Alternatively, the face to be registered may be a corpse, and the safety confirmation request may be a query.

  Here, the configuration of the system and apparatus according to the present invention is not necessarily limited to the configuration described above, and various configurations may be used. Further, the present invention is, for example, a method or apparatus for executing the processing according to the present invention, a program for causing a computer to implement such a method, a non-transient tangible medium for recording the program, etc. It can also be provided.

  It can be widely used for devices that perform similar searches for concealed data, and is suitable for biometric authentication systems, CCTV (Closed-Circuit Television) systems, and the like.

2: video storage server, 3: similar face image search server, 4: display terminal, 5: management terminal, 6: LAN, 11: facility, 12, 12a, 12b, 12c, 12d: surveillance camera, 13: database (DB) ), 14: white list, 15: suspicious person appearance list, 16: selection / thinning part, 17: grouping part, 18: suspicious person candidate searching part, 19: suspicious person judging part,
21: Camera I / F, 22: Record distribution control unit, 23: Web server unit, 24: Storage, 25: Setting holding unit 25, 41: Image acquisition I / F, 42: Face detection / feature amount calculation unit, 43 : Face registration / search unit 44: Face feature DB 45: Web service unit 46: Search trigger unit 47: Setting holding unit 48: Failure notification unit 71: Person ID table 72: Last search date list 73: Blacklist.

Claims (11)

A method for similar retrieval of concealed data, comprising: a first server that stores a plurality of sample data; and a second server that accesses the first server,
The first server is
A first step of concealing the plurality of sample data with a mapping that is at least locally distance-preserved in the sample data space;
Performing a second step of clustering and recording a pair of the concealed sample data and arbitrary data on a database based on the concealed sample data itself ,
The second server is
A third step of concealing the query data in the same manner as the method used for the sample data;
A fourth step of identifying a cluster in which sample data similar to query data is recorded based on the concealed query data;
One sample data similar to the query data is identified from the identified cluster by calculating the distance between the concealed sample data and the concealed query data, and a pair of the sample data is identified. Performing a fifth step of accessing arbitrary data ;
The sub-first step and the third concealment of data in step, to obtain a sub-step of quantizing the data in the data space, from the data, the residual by subtracting the quantized data A step of inputting the quantized data into a cryptographic hash function and obtaining a hash value, and outputting the set of the hash value and the residual as concealed data And
The clustering by the first server is a one-to-one or many-to-one correspondence between the hash value and the cluster based on the hash value portion of the concealed sample data. Similarity search method for concealed data. A method for similar retrieval of concealed data, comprising: a first server that stores a plurality of sample data; and a second server that accesses the first server,
The first server is
A first step of concealing the plurality of sample data with a mapping that is at least locally distance-preserved in the sample data space;
Performing a second step of clustering and recording a pair of the concealed sample data and arbitrary data on a database based on the concealed sample data itself ,
The second server is
A third step of concealing the query data in the same manner as the method used for the sample data;
A fourth step of identifying a cluster in which sample data similar to query data is recorded based on the concealed query data;
One sample data similar to the query data is identified from the identified cluster by calculating the distance between the concealed sample data and the concealed query data, and a pair of the sample data is identified. Performing a fifth step of accessing arbitrary data ;
The anonymity of the data in the first step and the third step includes the sub-steps based on the specific number given, it generates a random projection (RP) matrix the number of columns corresponding to the number of elements of the data, Subtracting the data as a column vector and multiplying the RP matrix from the front to obtain the concealed data, and
The similar data retrieval method for concealed data, wherein the data of the second server is substantially distance-preserved in the entire vector space and mapped to the concealed data space.   3. The concealed data similarity search method according to claim 2, wherein the RP matrix is a unitary matrix. A method for similar retrieval of concealed data, comprising: a first server that stores a plurality of sample data; and a second server that accesses the first server,
The first server is
A first step of concealing the plurality of sample data with a mapping that is at least locally distance-preserved in the sample data space;
Performing a second step of clustering and recording a pair of the concealed sample data and arbitrary data on a database based on the concealed sample data itself ,
The second server is
A third step of concealing the query data in the same manner as the method used for the sample data;
A fourth step of identifying a cluster in which sample data similar to query data is recorded based on the concealed query data;
One sample data similar to the query data is identified from the identified cluster by calculating the distance between the concealed sample data and the concealed query data, and a pair of the sample data is identified. Performing a fifth step of accessing arbitrary data ;
The said concealing data in the first step and the third step is regarded the data column vector and encodes the data as locally, as the distance is small Hamming length decreases in the vector space A sub-step, a second sub-step for generating a random projection (RP) matrix randomized according to a predetermined rule based on the encoded data, and an RP matrix before the data considered as a column vector. A third sub-step of obtaining the concealed data by multiplying by
The clustering by the first server performs the concealment of the concealed sample data so that those having a small distance from each other in the concealed sample data space are gathered in the same cluster. Similarity search method for data.   The encoding of the first sub-step includes one of local sensitivity hash, vector quantization, error correction code, distance-preserving run-length limit code, permutation code, distance-preserving map code, rank modulation code, and Gray code. 5. The concealed data similarity search method according to claim 4, wherein a plurality of combinations are used. A method for similar retrieval of concealed data, comprising: a first server that stores a plurality of sample data; and a second server that accesses the first server,
The first server is
A first step of concealing the plurality of sample data with a mapping that is at least locally distance-preserved in the sample data space;
Performing a second step of clustering and recording a pair of the concealed sample data and arbitrary data on a database based on the concealed sample data itself ,
The second server is
A third step of concealing the query data in the same manner as the method used for the sample data;
A fourth step of identifying a cluster in which sample data similar to query data is recorded based on the concealed query data;
One sample data similar to the query data is identified from the identified cluster by calculating the distance between the concealed sample data and the concealed query data, and a pair of the sample data is identified. Performing a fifth step of accessing arbitrary data ;
The concealment of the sample data in the first step is obtained by the first sub-step of dividing the sample data into two by a method of separating the upper bits and the lower bits in the binary representation of each element, and the two divisions. A second sub-step for gray-coding the higher-order bit data for each element; a third sub-step for generating one random number; and a part of the Gray code according to a predetermined rule based on the random number. A fourth sub-step for modifying, a fifth sub-step for modifying the low-order bit data obtained in the two divisions based on the random number, and considering the modified low-order bit data as a column vector, The sixth sub to obtain the randomly projected lower bit data by multiplying the random projection (RP) matrix generated based on the modified Gray code from the front And a seventh sub-step for error correction coding of the modified Gray code to obtain a redundant symbol, the randomly projected lower bit data, and the redundant symbol are concatenated to obtain concealed data. And a similar data retrieval method for concealed data, comprising: an eighth substep. A method for similar retrieval of concealed data, comprising: a first server that stores a plurality of sample data; and a second server that accesses the first server,
The first server is
A first step of concealing the plurality of sample data with a mapping that is at least locally distance-preserved in the sample data space;
Performing a second step of clustering and recording a pair of the concealed sample data and arbitrary data on a database based on the concealed sample data itself ,
The second server is
A third step of concealing the query data in the same manner as the method used for the sample data;
A fourth step of identifying a cluster in which sample data similar to query data is recorded based on the concealed query data;
One sample data similar to the query data is identified from the identified cluster by calculating the distance between the concealed sample data and the concealed query data, and a pair of the sample data is identified. Performing a fifth step of accessing arbitrary data ;
The concealment of the query data in the third step is obtained by the first sub-step of dividing the query data into two by a method of separating the upper bits and the lower bits in the binary representation of each element, and the two divisions. In addition, a second sub-step for gray-coding the higher-order bit data for each element, a third sub-step for determining one to be tried from all the numbers that can be generated as random numbers, and one number to be tried A fourth sub- step for modifying a part of the Gray code according to a predetermined rule, a fifth sub- step for error-correcting the modified Gray code to obtain a redundant symbol, and using the redundant symbol. A second sub-step of error correction decoding the gray code before being modified, and the two divisions based on the position of the bit corrected by the error correction decoding; A seventh sub-step of modifying the data of the lower bits are the resemble a modified low-order bits of the data to the column vector, the random projection (RP) matrix generated based on the modified Gray code from the previous An eighth sub-step of multiplying to obtain randomly projected lower bit data;
A method for similar search of concealed data, comprising: the randomly projected lower bit data; and a ninth sub-step for obtaining concealed data by concatenating the redundant symbols.   The error correction coding of the fifth sub-step has an error correction capability equal to or greater than the number of bits to which the Gray code can be modified plus one, and the cluster identification of the fourth step is The cluster of concealed data according to claim 7, wherein clusters that may be recorded with sample data similar to query data are narrowed down to a number smaller than the number of trials of the third sub-step. Similarity search method. A method for similar retrieval of concealed data, comprising: a first server that stores a plurality of sample data; and a second server that accesses the first server,
The first server is
A first step of concealing the plurality of sample data with a mapping that is at least locally distance-preserved in the sample data space;
Performing a second step of clustering and recording a pair of the concealed sample data and arbitrary data on a database based on the concealed sample data itself ,
The second server is
A third step of concealing the query data in the same manner as the method used for the sample data;
A fourth step of identifying a cluster in which sample data similar to query data is recorded based on the concealed query data;
One sample data similar to the query data is identified from the identified cluster by calculating the distance between the concealed sample data and the concealed query data, and a pair of the sample data is identified. Performing a fifth step of accessing arbitrary data ;
The method for retrieving similarities of concealed data, wherein the plurality of sample data are image feature quantity vectors or biometric information reduced in dimension by principal component analysis, independent component analysis or linear discriminant analysis. In a concealed data search system comprising a first server that stores a plurality of sample data and a second server that accesses the first server,
The first server is
The plurality of sample data is concealed with a mapping that is at least locally distance-preserved in the sample data space,
A pair of the concealed sample data and arbitrary data is configured to be recorded in a database by clustering based on the concealed sample data itself,
The second server is
The query data is concealed in the same way as the sample data,
Based on the concealed query data, identify a cluster in which sample data similar to the query data is recorded,
One sample data similar to the query data is identified from the identified cluster by calculating the distance between the concealed sample data and the concealed query data, and a pair of the sample data is identified. Configured to access arbitrary data,
The concealment of data is obtained by quantizing the data on the data space, subtracting the quantized data from the data to obtain a residual, and then converting the quantized data to a cryptographic hash function To obtain a hash value, and to output the set of the hash value and the residual as concealed data,
The clustering by the first server is a one-to-one or many-to-one correspondence between the hash value and the cluster based on the hash value portion of the concealed sample data. Confidential data search system. In a concealed data search system comprising a first server that stores a plurality of sample data and a second server that accesses the first server,
The first server is
The plurality of sample data is concealed with a mapping that is at least locally distance-preserved in the sample data space,
A pair of the concealed sample data and arbitrary data is configured to be recorded in a database by clustering based on the concealed sample data itself,
The second server is
The query data is concealed in the same way as the sample data,
Based on the concealed query data, identify a cluster in which sample data similar to the query data is recorded,
One sample data similar to the query data is identified from the identified cluster by calculating the distance between the concealed sample data and the concealed query data, and a pair of the sample data is identified. Configured to access arbitrary data,
The concealed data search system, wherein the plurality of sample data are image feature quantity vectors or biometric information reduced in dimension by principal component analysis, independent component analysis or linear discriminant analysis.

Images